Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://lolicomic.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: lolicomic.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Thu, 05 Feb 2015 09:28:15 GMT Location: http://bttrack.com/direct?url=http%3A%2F%2Fdprtb.com%2Fclick%3Fdata%3DU0pQQTRFVWVyN3RvTmh4U3QyQngydHdQUVpHS3dYTHpsQ1hSdThDb3FHTXdQNlRMZWJyZmpsZGVSaXNONWRsVi1yR3FINzdpY1FzN3pnaFhvWGM4UTQxSU5PWjl5a3h1eVNhZHRpSjJDRzJmeDZUM0U4Z1VWMkVoNXdOSzhiMWFQYmZ3YmJCQ2RDSURsNUFIU0E0TGJnMg2%26id%3D30c1e1e3-2f1f-49fc-94f6-4224f86929a3 Server: Microsoft-IIS/7.5 Content-Length: 434 Content-Type: text/html; charset=utf-8 P3P: policyref="http://www.bidtellect.com/w3c/p3p.xml", CP="CAO DSP COR ADMo DEVo PSAo PSDo HISo IVAo IVDo OUR IND OTC" X-AspNet-Version: 4.0.30319 X-AspNetMvc-Version: 5.2 X-Powered-By: ASP.NET X-ServerName: NLB2 | suspicious |
URL: http://bttrack.com/direct?url=http%3A%2F%2Fdprtb.com%2Fclick%3Fdata%3DU0pQQTRFVWVyN3RvTmh4U3QyQngydHdQUVpHS3dYTHpsQ1hSdThDb3FHTXdQNlRMZWJyZmpsZGVSaXNONWRsVi1yR3FINzdpY1FzN3pnaFhvWGM4UTQxSU5PWjl5a3h1eVNhZHRpSjJDRzJmeDZUM0U4Z1VWMkVoNXdOSzhiMWFQYmZ3YmJCQ2RDSURsNUFIU0E0TGJnMg2%26id%3D30c1e1e3-2f1f-49fc-94f6-4224f86929a3 (imitation of visitor from search engine) GET /direct?url=http%3A%2F%2Fdprtb.com%2Fclick%3Fdata%3DU0pQQTRFVWVyN3RvTmh4U3QyQngydHdQUVpHS3dYTHpsQ1hSdThDb3FHTXdQNlRMZWJyZmpsZGVSaXNONWRsVi1yR3FINzdpY1FzN3pnaFhvWGM4UTQxSU5PWjl5a3h1eVNhZHRpSjJDRzJmeDZUM0U4Z1VWMkVoNXdOSzhiMWFQYmZ3YmJCQ2RDSURsNUFIU0E0TGJnMg2%26id%3D30c1e1e3-2f1f-49fc-94f6-4224f86929a3 HTTP/1.1 Host: bttrack.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Cache-Control: private,no-cache Date: Thu, 05 Feb 2015 09:28:15 GMT Pragma: no-cache Location: http://dprtb.com/click?data=U0pQQTRFVWVyN3RvTmh4U3QyQngydHdQUVpHS3dYTHpsQ1hSdThDb3FHTXdQNlRMZWJyZmpsZGVSaXNONWRsVi1yR3FINzdpY1FzN3pnaFhvWGM4UTQxSU5PWjl5a3h1eVNhZHRpSjJDRzJmeDZUM0U4Z1VWMkVoNXdOSzhiMWFQYmZ3YmJCQ2RDSURsNUFIU0E0TGJnMg2&id=30c1e1e3-2f1f-49fc-94f6-4224f86929a3 Server: Microsoft-IIS/7.5 Content-Length: 392 Content-Type: text/html; charset=utf-8 Expires: -1 P3P: policyref="http://www.bidtellect.com/w3c/p3p.xml", CP="CAO DSP COR ADMo DEVo PSAo PSDo HISo IVAo IVDo OUR IND OTC" Set-Cookie: GLOBALID=2uKlc8-sIBd987GYJwG4GuX443PnXisYdZG-4O_LvD9w2jrxiA7Gqv3LnhnW4cQa6s_xcSHTlbM1; domain=.bttrack.com; expires=Sun, 05-Feb-2017 09:28:15 GMT; path=/ X-AspNet-Version: 4.0.30319 X-AspNetMvc-Version: 5.2 X-Powered-By: ASP.NET X-ServerName: NLB1 | suspicious |
Scanned pages/files
Request | Server response | Status |
http://lolicomic.com/ | 200 OK Content-Length: 3798 Content-Type: text/html | clean |
http://lolicomic.com/Scripts/Bundle?v=G8aXx_qVKy_Uk5yfNkCRo9j9VJ0IOyaWQqKWz72ck1A1 | 200 OK Content-Length: 658 Content-Type: text/javascript | clean |
http://lolicomic.com/b-a-n-n-e-r-1?domainid=758104 | 200 OK Content-Length: 79 Content-Type: text/javascript | clean |
http://lolicomic.com/test404page.js | 404 Not Found Content-Length: 1245 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=lolicomic.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://lolicomic.com/
Result: lolicomic.com is not infected or malware details are not published yet.
Result: lolicomic.com is not infected or malware details are not published yet.